Menu
▾
▴
RE: [Firebird-devel] crypt plugins
|
From: Magnus H. <ma...@le...> - 2004-09-24 09:50:16
|
> The DES hash currently used in firebird (single DES8, not to > be confused > with tripple-DES) is pretty easily breakable. > > Using special hardware: > > 1998 $200,000 4.5days. > http://www.schneier.com/crypto-gram-9808.html#descracker > > 2001 : $1,000 25.4hours > http://ece.gmu.edu/crypto/ches02/talks_files/Bond.pdf > > A few years ago, someone else had a farm of 100MHz SUN > workstations, (10 > or so) and it took a week. Or one could use systems like RainbowCrack http://www.antsight.com/zsl/rainbowcrack/, which according to their site "crack 10 alpha-numeric windows password in 184 seconds". Using sites like http://sarcaprj.wayreth.eu.org/, you do not even have to do the initial calculation. Long story short, making the security database un-/less available really does make sense. Magnus |
